Skip to main content
Panther Knowledge Base

Can I specify multiple accepted data types for a log schema field in Panther?

  1. Last updated
  2. Save as PDF

QUESTION

I have a log type with a field that can be one of several data types (for example, sometimes it's a string, and other times it's a boolean). Is there a way to allow both data types for the same field when creating the log schema in Panther?

ANSWER

Currently, Panther only supports one data type for each log field in a schema. If you are in the situation of requiring 1 field to match multiple data types, you could specify the field type as json.

By setting the type as json, Panther will allow valid JSON data formats, including:

  • String
  • Number
  • Boolean
  • Null
  • Array
  • JSON Object

 

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Page type
    Topic
  2. Tags
    This page has no tags.